CVE-2025-5255

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-5255

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-5255.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-5255

Published

2025-06-20T10:15:21.653Z

Modified

2026-03-15T22:51:12.151617Z

Severity

4.8 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X CVSS Calculator

Summary

[none]

Details

The Phoenix Code's configuration on macOS, specifically the presence of entitlements: "com.apple.security.cs.allow-dyld-environment-variables" and "com.apple.security.cs.disable-library-validation" allows for Dynamic Library (Dylib) injection. A local attacker with unprivileged access can use environment variables like DYLDINSERTLIBRARIES to successfully inject code in application's context and bypass Transparency, Consent, and Control (TCC). Acquired resource access is limited to previously granted permissions by the user. Access to other resources beyond granted-permissions requires user interaction with a system prompt asking for permission.

This issue was fixed in commit 0c75fb57f89d0b7d9b180026bc2624b7dcf807da

References

Affected packages

Git / github.com/phcode-dev/phoenix-desktop

Affected ranges

Type: GIT
Repo: https://github.com/phcode-dev/phoenix-desktop
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

ab5d5ffd04fbbab770c1ef6250cd0ec5323289c2

Affected versions

dev-app-v3.*

dev-app-v3.10.0

dev-app-v3.2.3

dev-app-v3.3.0

dev-app-v3.3.1

dev-app-v3.3.3

dev-app-v3.3.4

dev-app-v3.3.6

dev-app-v3.3.7

dev-app-v3.3.8

dev-app-v3.3.9

dev-app-v3.4.0

dev-app-v3.4.2

dev-app-v3.5.1

dev-app-v3.5.4

dev-app-v3.6.3

dev-app-v3.7.2

dev-app-v3.8.1

dev-app-v3.8.2

dev-app-v3.8.4

dev-app-v3.9.1

prod-app-v3.*

prod-app-v3.10.0

prod-app-v3.2.25

prod-app-v3.3.0

prod-app-v3.3.3

prod-app-v3.4.3

prod-app-v3.4.4

prod-app-v3.4.6

prod-app-v3.5.5

prod-app-v3.5.6

prod-app-v3.6.4

prod-app-v3.7.3

prod-app-v3.8.8

prod-app-v3.9.4

prod-app-v4.*

prod-app-v4.0.3

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-5255.json"